CVE-2020-27904

EPSS 3.1%

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 3.1%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

08 dic 2020Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to execute arbitrary code with kernel privileges.

Productos afectados

Apple · macOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://seclists.org/fulldisclosure/2020/Dec/32 http://seclists.org/fulldisclosure/2021/Feb/14 https://support.apple.com/en-us/HT211931 https://support.apple.com/kb/HT212147